Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa
File:                     8gc5rnvre74BB6GExXvq57qHWFQ.roa (raw, json)
Hash identifier:          x0M3WNjFTguMhqbVhQ0j/FqdY3fjLWQy/4cqxKXa/po=
Subject key identifier:   F2:07:39:AE:7B:EB:7B:BE:01:07:A1:84:C5:7B:EA:E7:BA:87:58:54
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0C61
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa
Signing time:             Fri 01 Sep 2023 10:20:37 +0000
ROA not before:           Fri 01 Sep 2023 10:20:37 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     24168
IP address blocks:        121.50.150.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3169 (0xc61)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep  1 10:20:37 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=F20739AE7BEB7BBE0107A184C57BEAE7BA875854
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:5d:65:de:e7:25:8c:40:23:36:a0:f1:df:b0:
                    57:b0:9c:91:66:4b:b6:64:79:b2:9c:26:b0:15:86:
                    97:dd:c8:f9:d1:5a:a7:fb:a3:7d:ea:61:50:fb:1f:
                    18:64:ae:54:74:56:b5:92:bb:9d:90:2b:9c:1c:49:
                    59:2e:81:93:da:f9:59:97:b9:9d:5f:d5:13:f3:3f:
                    27:15:71:94:48:da:53:9c:55:29:cd:8e:bb:a4:ae:
                    69:a4:4a:d2:85:50:e9:6d:0c:d2:bf:31:97:78:38:
                    35:33:bf:66:1c:b0:1f:d4:4b:bc:04:f9:97:f7:b4:
                    9c:09:19:d3:16:ed:d9:37:8e:63:ee:63:42:23:fd:
                    c0:80:4c:fe:0b:8d:99:1c:f5:e1:67:8a:ff:df:b0:
                    5b:03:50:d9:f4:8c:2a:4d:01:17:5f:47:7a:f8:fa:
                    0d:e6:ad:db:b2:b1:7a:5b:b2:7b:4c:24:2f:a4:38:
                    4a:ce:92:2f:8c:ca:67:88:4b:a2:a9:24:eb:9b:ff:
                    75:fb:9c:9b:cc:3b:6b:3f:b4:05:88:fa:b8:94:28:
                    43:90:66:f2:e8:58:fc:dc:83:c8:95:ce:9c:59:33:
                    53:4d:b5:e8:73:09:c2:59:f9:cd:1f:88:b6:6c:93:
                    13:dd:cb:52:e9:40:d5:11:01:7f:16:24:5c:76:ad:
                    69:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:07:39:AE:7B:EB:7B:BE:01:07:A1:84:C5:7B:EA:E7:BA:87:58:54
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.150.0/24

    Signature Algorithm: sha256WithRSAEncryption
         1d:9c:a4:3e:0b:c7:0d:de:00:5f:0e:53:5a:63:f5:5a:3d:fe:
         33:31:1a:6b:b2:16:ff:7c:97:02:23:de:28:41:f5:b1:b7:16:
         c7:a2:41:fc:40:80:8e:fb:44:a0:b5:63:c2:f8:40:ad:74:7e:
         38:5d:f7:d9:d4:7b:ab:cf:fe:60:e1:12:82:fa:18:ae:52:76:
         31:03:44:3e:92:da:6a:c9:e0:a1:3b:72:a7:b9:83:d2:cb:40:
         2a:6b:3c:5e:59:70:97:5e:35:74:7e:1c:1b:5a:1b:4e:8e:24:
         16:7b:48:d6:da:c0:11:f8:a4:b3:92:aa:40:06:6e:b1:c2:b0:
         c8:ae:f3:e3:20:12:9f:10:da:83:09:f2:fd:bf:63:df:b2:61:
         0a:9a:2f:b3:48:0e:43:77:15:34:21:91:db:4a:7a:ae:3b:ad:
         17:d0:80:b3:e1:1e:fb:f9:eb:82:d5:a1:d5:71:4e:0a:d0:d5:
         ac:89:b0:84:b8:d3:eb:80:cf:c5:c1:a6:ab:a2:b0:03:46:74:
         57:a5:c4:77:7d:21:57:ed:68:3d:f9:16:c8:02:ff:1c:e1:e5:
         e8:68:39:32:73:75:19:09:22:00:4d:6f:df:ed:04:2b:8f:4f:
         f6:3d:cd:65:48:a1:52:17:32:dd:1c:eb:35:34:ed:7a:3a:8c:
         0d:38:09:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org